You are viewing a plain text version of this content. The canonical link for it is here.

Posted to mime4j-dev@james.apache.org by "Robert Burrell Donkin (JIRA)" <mi...@james.apache.org> on 2009/02/07 08:52:59 UTC

[jira] Created: (MIME4J-113) [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation

[SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation
-----------------------------------------------------------------------

                 Key: MIME4J-113
                 URL: https://issues.apache.org/jira/browse/MIME4J-113
             Project: JAMES Mime4j
          Issue Type: Wish
    Affects Versions: 0.7
            Reporter: Robert Burrell Donkin


Add canonicalisation and normalisation support suitable for use with SMIME and OpenPGP/MIME

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (MIME4J-113) [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation

Posted by "Robert Burrell Donkin (JIRA)" <mi...@james.apache.org>.

    [ https://issues.apache.org/jira/browse/MIME4J-113?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12671424#action_12671424 ] 

Robert Burrell Donkin commented on MIME4J-113:
----------------------------------------------

This is an excellent use case to test the quality of the API

> [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation
> -----------------------------------------------------------------------
>
>                 Key: MIME4J-113
>                 URL: https://issues.apache.org/jira/browse/MIME4J-113
>             Project: JAMES Mime4j
>          Issue Type: Wish
>    Affects Versions: 0.7
>            Reporter: Robert Burrell Donkin
>
> Add canonicalisation and normalisation support suitable for use with SMIME and OpenPGP/MIME

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (MIME4J-113) [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation

Posted by "Markus Wiederkehr (JIRA)" <mi...@james.apache.org>.

    [ https://issues.apache.org/jira/browse/MIME4J-113?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12671457#action_12671457 ] 

Markus Wiederkehr commented on MIME4J-113:
------------------------------------------

> IIRC unlimited support for round tripping is not required for SMIME or OpenPGP/MIME

Transfer encodings have to be preserved if you want to interact with real world mail clients. Header fields have to be preserved, too. The only thing not so critical are what kind of line delimiters because of CRLF canonicalization.

> [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation
> -----------------------------------------------------------------------
>
>                 Key: MIME4J-113
>                 URL: https://issues.apache.org/jira/browse/MIME4J-113
>             Project: JAMES Mime4j
>          Issue Type: Wish
>    Affects Versions: 0.7
>            Reporter: Robert Burrell Donkin
>
> Add canonicalisation and normalisation support suitable for use with SMIME and OpenPGP/MIME

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (MIME4J-113) [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation

Posted by "Robert Burrell Donkin (JIRA)" <mi...@james.apache.org>.

    [ https://issues.apache.org/jira/browse/MIME4J-113?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12671421#action_12671421 ] 

Robert Burrell Donkin commented on MIME4J-113:
----------------------------------------------

http://mail-archives.apache.org/mod_mbox/james-mime4j-dev/200902.mbox/%3ca92573960902061448g647ca695s89dec26f464f0fe4@mail.gmail.com%3e

>> I think you've made a good point with #112. I also believe that
>> perfect reproduction of a message would be a necessity if a Mime4j DOM
>> should ever be used for verifying an S/MIME signature..
>
> it's not as simple as that: SMIME (and OpenPGP/MIME) require
> canonicalisation and normalisation

I know.. we've already had this discussion to some extent.

One the one hand we have RFC2633 that is a bit vague when it comes to
the concrete canonicalization steps: "The exact details of
canonicalization depend on the actual MIME type and subtype of an
entity, and are not described here." But at least it describes basic
CRLF canonicalization.

On the other hand we have some real world MUAs that support S/MIME.. I
know for sure that Outlook does not even perform basic CRLF
canonicalization. Neither Outlook nor Thunderbird decode transfer
encodings before verifying (nor should they if I understand
correctly).

So in order to support explicit S/MIME signatures Mime4j must not
automatically decode transfer encodings the way it does now. This
process is never reversible, especially for quoted-printable.

CRLF canonicalization does not worry me because it can always be
applied with a simple filter stream..

> [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation
> -----------------------------------------------------------------------
>
>                 Key: MIME4J-113
>                 URL: https://issues.apache.org/jira/browse/MIME4J-113
>             Project: JAMES Mime4j
>          Issue Type: Wish
>    Affects Versions: 0.7
>            Reporter: Robert Burrell Donkin
>
> Add canonicalisation and normalisation support suitable for use with SMIME and OpenPGP/MIME

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Updated: (MIME4J-113) [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation

Posted by "Robert Burrell Donkin (JIRA)" <mi...@james.apache.org>.

     [ https://issues.apache.org/jira/browse/MIME4J-113?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Robert Burrell Donkin updated MIME4J-113:
-----------------------------------------

    Fix Version/s: 0.7

> [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation
> -----------------------------------------------------------------------
>
>                 Key: MIME4J-113
>                 URL: https://issues.apache.org/jira/browse/MIME4J-113
>             Project: JAMES Mime4j
>          Issue Type: Wish
>    Affects Versions: 0.7
>            Reporter: Robert Burrell Donkin
>             Fix For: 0.7
>
>         Attachments: signature-transfer-encoding.zip
>
>
> Add canonicalisation and normalisation support suitable for use with SMIME and OpenPGP/MIME

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (MIME4J-113) [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation

Posted by "Robert Burrell Donkin (JIRA)" <mi...@james.apache.org>.

    [ https://issues.apache.org/jira/browse/MIME4J-113?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12671422#action_12671422 ] 

Robert Burrell Donkin commented on MIME4J-113:
----------------------------------------------

James has a SMIME mailet http://james.apache.org/mailet/crypto/

> [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation
> -----------------------------------------------------------------------
>
>                 Key: MIME4J-113
>                 URL: https://issues.apache.org/jira/browse/MIME4J-113
>             Project: JAMES Mime4j
>          Issue Type: Wish
>    Affects Versions: 0.7
>            Reporter: Robert Burrell Donkin
>
> Add canonicalisation and normalisation support suitable for use with SMIME and OpenPGP/MIME

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Updated: (MIME4J-113) [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation

Posted by "Markus Wiederkehr (JIRA)" <mi...@james.apache.org>.

     [ https://issues.apache.org/jira/browse/MIME4J-113?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Markus Wiederkehr updated MIME4J-113:
-------------------------------------

    Attachment: signature-transfer-encoding.zip

The attachment "signature-transfer-encoding.zip" should prove my point. It contains a self-signed certificate and two digitally signed messages. The message was signed using Thunderbird 2.0.

In order to verify the signature one has to import the certificate and mark it for e-mail usage first ("Trust this CA to identify email users" in Thunderbird).

The messages only differ in the transfer encoding. Both are quoted-printable but the bad one encodes an additional space as =20.

So if Mime4j automatically decodes quoted-printable it is impossible to verify a signature because the transfer encoding is part of the signed data.

> [SMIME and OpenPGP/MIME] Support For Canonicalication And Normalisation
> -----------------------------------------------------------------------
>
>                 Key: MIME4J-113
>                 URL: https://issues.apache.org/jira/browse/MIME4J-113
>             Project: JAMES Mime4j
>          Issue Type: Wish
>    Affects Versions: 0.7
>            Reporter: Robert Burrell Donkin
>         Attachments: signature-transfer-encoding.zip
>
>
> Add canonicalisation and normalisation support suitable for use with SMIME and OpenPGP/MIME

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.